Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/j7EPWi1SNZk_uFVjCChMRROOlLY.roa
File: j7EPWi1SNZk_uFVjCChMRROOlLY.roa (raw, json)
Hash identifier: 04qYAbyWCNGQ1yvrs/S3cyLss2GqZ7uZgJCplPQesHE=
Subject key identifier: 8F:B1:0F:5A:2D:52:35:99:3F:B8:55:63:08:28:4C:45:13:8E:94:B6
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01959F091F147B77B875D487D4FB1DF3971F
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/j7EPWi1SNZk_uFVjCChMRROOlLY.roa
Signing time: Sun 16 Mar 2025 12:58:49 +0000
ROA not before: Sun 16 Mar 2025 12:58:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207252
IP address blocks: 5.83.152.0/24 maxlen: 24
5.231.29.0/24 maxlen: 24
77.90.12.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.33.0/24 maxlen: 24
77.90.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 16 Mar 2025 14:57:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:9f:09:1f:14:7b:77:b8:75:d4:87:d4:fb:1d:f3:97:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Mar 16 12:58:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8fb10f5a2d5235993fb8556308284c45138e94b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:a7:9c:f9:c6:8f:52:bc:bc:10:6b:63:e6:8b:
ee:91:15:b2:ba:88:ba:a4:a4:0e:d6:e7:eb:48:d9:
94:e0:a5:c0:cd:b7:5d:c2:f6:59:17:a2:5a:08:c0:
3b:a3:6a:82:67:7c:04:8a:9c:a4:73:5f:f6:9e:ed:
8a:06:5d:51:d5:d4:c5:bc:f6:67:74:5e:53:21:99:
a3:0c:b0:0f:25:c1:85:ab:07:59:71:d6:17:f9:2f:
99:92:60:6e:5e:b4:50:41:0c:bc:71:30:6b:b3:a3:
9e:03:1e:58:46:21:4e:3a:0d:7d:8b:67:91:77:a9:
87:e2:a3:47:0f:3f:85:24:2a:6d:fc:66:34:15:36:
70:96:fb:fb:96:1c:46:70:42:6c:52:79:ec:33:a3:
1c:2a:aa:2b:6f:68:c8:85:fa:b6:10:67:1a:7d:88:
61:72:bb:4d:7d:e3:1b:85:e2:3c:f4:9b:df:f2:16:
72:47:1b:7a:72:55:42:0c:76:8f:0a:fc:09:80:a2:
a1:fc:35:c4:21:8c:da:a6:dc:5b:40:00:3b:a3:d9:
42:5d:16:30:cb:e7:5b:26:ac:d3:1f:15:8c:b6:93:
f6:92:2f:ce:29:1b:d0:44:3d:d4:20:52:a5:41:9a:
f9:85:01:39:7e:b5:02:0e:76:86:e2:a9:dd:70:cf:
56:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B1:0F:5A:2D:52:35:99:3F:B8:55:63:08:28:4C:45:13:8E:94:B6
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/j7EPWi1SNZk_uFVjCChMRROOlLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.152.0/24
5.231.29.0/24
77.90.12.0/24
77.90.22.0/24
77.90.33.0/24
77.90.42.0/24
Signature Algorithm: sha256WithRSAEncryption
45:b6:8d:14:3d:33:cd:85:2b:1a:53:58:0f:be:91:b5:8d:1e:
7e:f9:a1:91:da:c2:0c:f1:1b:cc:34:8f:a1:51:80:7b:f6:2e:
8e:a7:bd:81:15:75:40:f9:f1:34:eb:2a:b2:2c:6f:1c:30:e2:
fb:86:80:51:b1:49:dc:f4:24:4f:ff:fb:e8:a2:1d:83:75:2b:
37:eb:f1:c5:85:0d:fa:5b:fa:73:66:50:fb:b1:49:89:ea:90:
3d:7c:71:26:7c:a8:b3:c9:b6:fd:19:35:97:3c:4e:51:99:76:
db:fc:59:38:44:70:3f:0e:89:0c:d9:12:9c:dc:36:74:83:b8:
72:61:97:94:1f:77:8c:d9:8a:d3:83:f0:0c:c5:76:f4:50:f4:
ce:5f:4c:b9:99:b8:cf:3c:69:b3:5c:8f:01:9e:9b:a4:08:58:
75:c7:e7:91:54:a3:70:ce:a1:f5:52:10:03:93:9e:ed:19:84:
0c:13:1d:91:f0:a3:d2:1b:de:4c:8b:ac:f3:d3:36:c8:51:8d:
95:b3:52:ed:9c:5f:7b:77:65:e2:5e:27:30:1e:e9:49:5f:c7:
11:9d:44:7b:88:5a:47:c5:2b:99:ea:0d:43:c5:97:15:44:b8:
ff:a3:e6:48:70:7b:2c:71:07:af:c7:8f:bc:82:a9:9b:e0:b4:
74:1a:c5:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:32:18 2025 by rpki-client